CVE-2012-3454

low

Published 2012-08-07 · Modified 2026-04-29

CVSS v3

—

CVSS v2

3.6

VIR risk

3.6

Description

eXtplorer 2.1.0b6 uses world writable permissions for the /var/lib/extplorer/ftp_tmp directory, which allows local users to delete or overwrite arbitrary files.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

Application impact

Vendor	Product	Versions	Fixed
extplorer	extplorer	`2.1.0`

References

http://www.openwall.com/lists/oss-security/2012/08/03/7
http://www.securityfocus.com/bid/54801
http://www.openwall.com/lists/oss-security/2012/08/03/7
http://www.securityfocus.com/bid/54801

CWEs

CWE-264

Verify integrity in audit chain (admin only). AS-IS.